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What is claimed is: 
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7K method for conductinQ a transaction, the method comprising: 
a. receiving a transaction request from a user at a server; 
issuing a challerrige to the user; 

receiving a response from the user based upon said challenge; 
processing said response to verify an instrument; 

assembling credentials for the transaction, said credentials comprising at 
least one key; I 

providing at least a portion of said credentials to said user; 
receiving a second request from said user, said second request including 
said portion of said credentials; and 

validating sa/d portion of said credentials with said key to provide access 
to a transaction service. 



b. 
c. 
d. 
e. 

f. 

g- 

h. 



The method of 
transaction. 

The method oi 
conducted using 

The method of C 



:iaim1, wherein the transaction is an electronic purchase 



Claim 2, wherein the electronic purchase transaction is 
a digital wallet. 

aim 1 , wherein the instrument is a smartcard. 



A method for protecting a network server from bejr 
attack on a network client, the method compriswrg: 



used as the basis of an 



a. restricting access to said 
server for at least a selecte 

b. scanning said portiqp-^'of s 



twojac^erver to a portion of said network 
)rotbcol; and 
ifd network server for particular characters, 



said particular ch^acters being associated with said selected protocol. 
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The method of (j^m 5, further comprising removing Me particular characters 
such that a security risk posed by said selected protocol is reduced. 



The method of Claim 5, further comprising replacing said particular characters 
with benign characters s^jch that a security risk posed by said selected protocol 
is reduced. 

The method of Claim 5, vt^herein said characters are hostile characters and 
wherein if a request contains any of said hostile characters, the request is 



rejected. 



The method of Claim 5, f|Lirther comprising logging said particular characters to 
form a security log. 



The method of Claim 9 
determine whether said 



The method of Claim 5 
accomplished during an 



further comprising reviewing said security log to 
pjarticular characters are hostile. 



wherein said protection of the network server is 
lectronic purchase transaction. 



The method of Claim fl1, wherein the electronic purchase transaction is 
conducted using a digHal wallet. 



A transaction systenjj, 
a. 



b. 
c. 



the transaction system comprises: 
a user computer/, 'wherdin said user computer is operated by a user; 
a transaction aUithorize/ computer; 

wnfer^in when the user wishes to execute a transaction, a 
established between said user computer and said 



a data network 
connection is 



a security serv 
security server 



transaction authorizer computer via said data network; and 



3r, wherein a connection is established between said 
nd said user computer to verify that an intelligent token 



is in the user's possession. 



The transaction system of Claim 13, further comprising a transaction tool server. 
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The transaction^^tem of Claim 13, wherein the CWr is a purchaser, the 
transaction authorizer is a merchant and the user and merchant consummate a 
purchase transaction. 



1 6. The transaction system 



of C\a\r/C 



15, further comprising a wallet server. 



17. The transaction system of Claim 13, wherein the user computer comprises a 
transaction tool and a reader, wherein said reader is capable of transferring 
information between the transadtion tool and the intelligent token. 



18. The transaction system of Cla 
client. 



m 17, wherein said transaction tool is a wallet 



19. The transaction system of Claim 13, wherein the intelligent token is a smartcard. 

20. The transaction system of cflaim 13, wherein the connection between said 
security server and said trainsaction authorizer computer is through a data 
connection separate from said data network. 

21. The transaction system /of Claim 17, wherein said transaction tool 
communicates with said sepurity server via a data connection separate from 
said data network. 

22. The transaction system of ICIaim 13, wherein the intelligent token comprises a 
digital certificate that (u^iqqely identifies the user associated with the intelligent 
token. 



23. The transaction system of Claim 22, wherein the user of said intelligent token 



unlocks access to the digi 



24. The transaction system of 



!al certificate by use of a personal identifier 



Claim 13, wherein the intelligent token is issued by an 
issuer and wherein a transaction made using said transaction system is 
considered a "card present" transaction as deemed by the issuer of the 
intelligent token. 
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25. A digital wallet cSlprising: 

a. at least one server; and 

b. an activator for accessing said at least one server:^ wherein said activator 
exchanges information with said at least one server. 

26. The digital wallet of Claim 25, wherein said at least or/e server includes a digital 
wallet server. 

27. The digital wallet of Claim 25, wherein said at \^si one server includes at least 
one non-wallet application. 

28. The digital wallet of Claim 25, wherein a cl)6nt window is displayed in a browser 
window. 

29. The digital wallet of Claim 25 further 9Gmprising a toolbar. 

30. A digital wallet comprising: 

a. at least one server; and 

b, a toolbar. 

31. The digital wallet of Claimy^O, wherein said digital wallet further comprises an 
activator. 

32. The digital wallet fq|f Cj^im 31, wherein said toolbar performs a small download 
of said activator. 

33. The digital wallety6f Claim 30, wherein said toolbar utilizes an operating system 
control element. 

34. The digital wallet of Claim 33, wherein the operating system control element is a 
system tray icon. 

35. The digi^l wallet of Claim 30, further comprising a transaction authorizer 
windowy 
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36. The digital walliWf Claim 35, wherein said toolbar discrete window that 
associates with the transaction authorizer window. 



37. The digital wallet of Claim 30, further comprising a form fill ^mponent which 
allows a user to pre-fill forms. 

38. The digital wallet of Claim 37, wherein the form/fill component comprises a 
model that characterizes a transaction authoriz^ site. 

39. The digital wallet of Claim 37, wherejff the form fill component comprises a 
model that characterizes a user. 

40. The digital wallet of Claim 2Kfwfierein the form fill component comprises: 

a. a model that char^Wizes a transaction authorizer site; and 

b. a model that characterizes a user. 

41 . The digital W3ltet of Claim 30, further comprising an auto-remember component. 



42. The digital wallet of Claim 36, wherein the auto-remember component includes 
hetfristics based field recognition. 
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